Learn the basics of vulnerability management. Discover why vulnerabilities exist as well as how to manage them from start to finish.
Overview
Syllabus
Introduction
- Managing vulnerabilities
- The key elements of VM: DARC
- What is a vulnerability?
- Why do vulnerabilities exist?
- Vulnerability sources
- Introduction to vulnerability scanning
- Reporting
- Handling all those vulnerabilities
- CVSS: Industry standard severity algorithm
- CVSS: Modifying factors
- Concern: Regulatory requirements
- Concern: Exposure
- Risk and compensating controls
- Introduction to patch and config management tools
- Vetting false positives
- Confirm remediation
- Review DARC
- Building a program
- A constant effort
Taught by
Lora Vaughn
